MakerDAO Vote Delegate Contract Audit
Cantina Security Report
Organization
- @makerdao
Engagement Type
Cantina Reviews
Period
-
Repositories
Researchers
Vote Delegation and Hatch Execution Review of MakerDAO
MakerDAO enables decentralized governance through vote delegation and smart contract-driven proposals. The vote-delegate system plays a central role in automating voting flows, managing hatch cooldowns, and handling stake commitments through contracts integrated with DSChief and Lockstake Engine components.
To validate a round of updates, MakerDAO engaged Cantina for a security audits review of the vote-delegate contract. The audit evaluated lock-blocking risks, unnecessary hashed salts, cooldown off-by-one logic, and the updated handling of obsolete IOUs—ensuring secure delegation behavior and consistent system design under active governance usage.
Cantina also helps secure DAO coordination layers like MakerDAO with continued protections through bug bounty programs, crowdsourced security competitions, and multisig security, supporting robust access control and safe token governance.
Findings
Low Risk
1 findings
0 fixed
1 acknowledged
Informational
2 findings
2 fixed
0 acknowledged
Gas Optimizations
1 findings
1 fixed
0 acknowledged